TEST CASE SPECIFICATION

ChallengePKI Timestamp Interoperability Test Suite (Rev.3)

Please substitute the hostname of your test TSA for 'MyTestTSA' using hosts file

10001 | 10002 | 10003 | 10004 | 10005 | 10006 | 10007 | 10008 | 10009 | 10010 | 10011 | 10012 | 10013 | 10014 | 10015 | 10016 | 10017 | 10018 | 10019 | 10020 | 10021 | 10022 | 10023 | 10024 | 10025 | 10026 | 10027 | 10028 | 10029 | 10030 | 10031 | 10032 | 10033 | 10034 | 10035 | 10036 | 10037 | 10038 | 10039 | 10040 | 10041 | 10042 | 10043 | 10044 | 10045 | 10046 | 10047 | 10048 | 10049 | 10050 | 10051 | 10052 | 10053 | 10054 |

TEST CASE
ID	10001
CODE	OK
EXP_VALUE	ACCEPT
NOTE	norm-reply (granted)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10002
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10002
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	1
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	abbr.
DETAIL	abbr.

top

TEST CASE
ID	10002
CODE	MIME
EXP_VALUE	REJECT
NOTE	invalid mime-type
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10003
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-response
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	2
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	3.4. Time-Stamp Protocol via HTTP
DETAIL	valid response with content type application/timestamp-response or #typo of RFC 3161

top

TEST CASE
ID	10003
CODE	STATUS
EXP_VALUE	ACCEPT
NOTE	norm-reply (grantedWithMods)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10004
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	1(grantedWithMods)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	3
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"when the PKIStatus contains the value one a TimeStampToken,with modifications, is present."

top

TEST CASE
ID	10004
CODE	STATUS
EXP_VALUE	REJECT
NOTE	norm-reply (rejection)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10005
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	1.2.9999.9999
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	NONE
PKIStatusInfo.status	2(rejection)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	15 (unacceptedPolicy)
TSTInfo.version	-
TSTInfo.policy	-
MessageImprint.hashAlgorithm	-
MessageImprint.hashedMessage	-
TSTInfo.serialNumber	-
TSTInfo.genTime	-
TSTInfo.accuracy	-
TSTInfo.ordering	-
TSTInfo.nonce	-
TSTInfo.tsa	-
TSTInfo.extensions	-
CMS::signedData.version	-
CMS::contentInfo	-
CMS::econtentInfo	-
CMS::signingCertificate	-
CMS::signerInfo	-
CMS::ESSCertID.certHash	-
CMS::signature	-
CMS::SigningCertificate.signer_keypair	-
CMS::SigningCertificate.certs	-
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	the requesting entity SHALL verify the status error returned in the response

top

TEST CASE
ID	10005
CODE	STATUS
EXP_VALUE	REJECT
NOTE	TimeStampResp.status is out of a range
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10006
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	NONE
PKIStatusInfo.status	9
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	-
TSTInfo.policy	-
MessageImprint.hashAlgorithm	-
MessageImprint.hashedMessage	-
TSTInfo.serialNumber	-
TSTInfo.genTime	-
TSTInfo.accuracy	-
TSTInfo.ordering	-
TSTInfo.nonce	-
TSTInfo.tsa	-
TSTInfo.extensions	-
CMS::signedData.version	-
CMS::contentInfo	-
CMS::econtentInfo	-
CMS::signingCertificate	-
CMS::signerInfo	-
CMS::ESSCertID.certHash	-
CMS::signature	-
CMS::SigningCertificate.signer_keypair	-
CMS::SigningCertificate.certs	-
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	Compliant clients MUST generate an error if values it does not understand are present.

top

TEST CASE
ID	10006
CODE	STATUS
EXP_VALUE	REJECT
NOTE	PKIStatusInfo.failInfo is out of a range
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10007
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	NONE
PKIStatusInfo.status	2(rejection)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	26
TSTInfo.version	-
TSTInfo.policy	-
MessageImprint.hashAlgorithm	-
MessageImprint.hashedMessage	-
TSTInfo.serialNumber	-
TSTInfo.genTime	-
TSTInfo.accuracy	-
TSTInfo.ordering	-
TSTInfo.nonce	-
TSTInfo.tsa	-
TSTInfo.extensions	-
CMS::signedData.version	-
CMS::contentInfo	-
CMS::econtentInfo	-
CMS::signingCertificate	-
CMS::signerInfo	-
CMS::ESSCertID.certHash	-
CMS::signature	-
CMS::SigningCertificate.signer_keypair	-
CMS::SigningCertificate.certs	-
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	Compliant clients MUST generate an error if values it does not understand are present.

top

TEST CASE
ID	10007
CODE	TST
EXP_VALUE	REJECT
NOTE	no TST in spite of granted reply
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10008
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	NONE
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	-
TSTInfo.policy	-
MessageImprint.hashAlgorithm	-
MessageImprint.hashedMessage	-
TSTInfo.serialNumber	-
TSTInfo.genTime	-
TSTInfo.accuracy	-
TSTInfo.ordering	-
TSTInfo.nonce	-
TSTInfo.tsa	-
TSTInfo.extensions	-
CMS::signedData.version	-
CMS::contentInfo	-
CMS::econtentInfo	-
CMS::signingCertificate	-
CMS::signerInfo	-
CMS::ESSCertID.certHash	-
CMS::signature	-
CMS::SigningCertificate.signer_keypair	-
CMS::SigningCertificate.certs	-
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"When the status contains the value zero or one, a TimeStampToken MUST be present."

top

TEST CASE
ID	10008
CODE	TST
EXP_VALUE	REJECT
NOTE	TST exists though TimeStampResp.status is 2(rejection)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10009
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	1.2.9999.9999
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	2(rejection)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	15 (unacceptedPolicy)
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	8
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"When status contains a value other than zero or one, a TimeStampToken MUST NOT be present."

top

TEST CASE
ID	10009
CODE	CMS
EXP_VALUE	REJECT
NOTE	CMS::contentType is invalid
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10010
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10010
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	9
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-Data
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	It is defined as a ContentInfo ([CMS]) and SHALL encapsulate a signed data content type.

top

TEST CASE
ID	10010
CODE	CMS
EXP_VALUE	REJECT
NOTE	CMS::eContentType is invalid
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10011
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10011
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	10
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-Data
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	For a time-stamp token it is defined as: id-ct-TSTInfo OBJECT IDENTIFIER ::= { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-9(9) smime(16) ct(1) 4}

top

TEST CASE
ID	10011
CODE	CMS
EXP_VALUE	ACCEPT
NOTE	CMS::signedData.version is invalid
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10012
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10012
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	11
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	1
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3369
SECTION	5.1 SignedData Type
DETAIL	"if attribute certificates are present, the encapsulated content type is other than id-data, or any of the elements of SignerInfos are version 3, then the value of version shall be 3."

top

TEST CASE
ID	10012
CODE	TSTInfo
EXP_VALUE	REJECT
NOTE	invalid TST encoding
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10013
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10013
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT(but unable to decode)
PKIStatusInfo.status	-
PKIStatusInfo.statusString	-
PKIStatusInfo.failInfo	-
TSTInfo.version	-
TSTInfo.policy	-
MessageImprint.hashAlgorithm	-
MessageImprint.hashedMessage	-
TSTInfo.serialNumber	-
TSTInfo.genTime	-
TSTInfo.accuracy	-
TSTInfo.ordering	-
TSTInfo.nonce	-
TSTInfo.tsa	-
TSTInfo.extensions	-
CMS::signedData.version	-
CMS::contentInfo	-
CMS::econtentInfo	-
CMS::signingCertificate	-
CMS::signerInfo	-
CMS::ESSCertID.certHash	-
CMS::signature	-
CMS::SigningCertificate.signer_keypair	-
CMS::SigningCertificate.certs	-
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	it SHALL verify the various fields contained in the TimeStampToken

top

TEST CASE
ID	10013
CODE	TSTInfo-Version
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.version
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10014
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10014
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	0
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	13
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	The version field (currently v1) describes the version of the time-stamp token.

top

TEST CASE
ID	10014
CODE	TSTInfo-Version
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.version
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10015
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10015
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	2
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	14
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	The version field (currently v1) describes the version of the time-stamp token.

top

TEST CASE
ID	10015
CODE	reqPolicy
EXP_VALUE	ACCEPT
NOTE	matched TSTInfo.policy (1.2.3)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10016
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	1.2.3
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	15
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"If a similar field was present in the TimeStampReq, then it MUST have the same value"

top

TEST CASE
ID	10016
CODE	reqPolicy
EXP_VALUE	REJECT
NOTE	mismatched TSTInfo.policy (1.2.3.1.2.3)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10017
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	1.2.9999.9999
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3.1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	16
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"If a similar field was present in the TimeStampReq, then it MUST have the same value"

top

TEST CASE
ID	10017
CODE	messageImprint
EXP_VALUE	REJECT
NOTE	TSTInfo.massageImprint.hash is mismatched (120bit)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10018
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	1.2.840.113549.2.5(md5)
MessageImprint.hashedMessage	0xd8e8fca2dc0f896fd7cb4cb0031ba249(120bit)
TSTInfo.serialNumber	17
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	"In particular, it SHALL verify that what was time-stamped corresponds to what was requested to be time-stamped."

top

TEST CASE
ID	10018
CODE	messageImprint
EXP_VALUE	REJECT
NOTE	TSTInfo.massageImprint.hash is mismatched (160bit)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10019
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	1.3.14.3.2.26(sha-1)
MessageImprint.hashedMessage	0x4e1243bd22c66e76c2ba9eddc1f91394e57f9f83(160bit)
TSTInfo.serialNumber	18
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	"In particular, it SHALL verify that what was time-stamped corresponds to what was requested to be time-stamped."

top

TEST CASE
ID	10019
CODE	serialNumber
EXP_VALUE	ACCEPT
NOTE	big serialNumber
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10020
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10020
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	0x4e1243bd22c66e76c2ba9eddc1f91394 e57f9f834e1243bd22c66e76c2ba9edd c1f91394e57f9f834e1243bd22c66e76 c2ba9eddc1f91394e57f9f834e1243bd(64byte)
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	Time-Stamping users MUST be ready to accommodate integers up to 160 bits.

top

TEST CASE
ID	10020
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (no seconds)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10021
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10021
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	20
TSTInfo.genTime	YYYYMMDDhhmmZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	GeneralizedTime values MUST include seconds.

top

TEST CASE
ID	10021
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (no 'Z')
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10022
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10022
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	21
TSTInfo.genTime	YYYYMMDDhhmmss
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"The encoding MUST terminate with a ""Z"" (which means ""Zulu"" time)."

top

TEST CASE
ID	10022
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (YYYYMMDDhhmmss:999Z)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10023
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10023
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	22
TSTInfo.genTime	YYYYMMDDhhmmss:999Z
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"The decimal point element, if present, MUST be the point option "".""."

top

TEST CASE
ID	10023
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (YYYYMMDDhhmmss.900Z)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10024
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10024
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	23
TSTInfo.genTime	YYYYMMDDhhmmss.900Z
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"The fractional-seconds elements, if present, MUST omit all trailing 0's;"

top

TEST CASE
ID	10024
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (YYYYMMDDhhmmss.000Z)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10025
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10025
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	24
TSTInfo.genTime	YYYYMMDDhhmmss.000Z
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"if the elements correspond to 0, they MUST be wholly omitted"

top

TEST CASE
ID	10025
CODE	genTime
EXP_VALUE	REJECT
NOTE	invalid TSTInfo.genTime (YYYYMMDDhhmmss.Z)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10026
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10026
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	25
TSTInfo.genTime	YYYYMMDDhhmmss.Z
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	and the decimal point element also MUST be omitted.

top

TEST CASE
ID	10026
CODE	genTime
EXP_VALUE	REJECT
NOTE	too old genTime (with nonce)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10027
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	0x (160bit)
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	26
TSTInfo.genTime	YYYYMMDDhhmmssZ -864000
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	It SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference

top

TEST CASE
ID	10027
CODE	genTime
EXP_VALUE	REJECT
NOTE	too old genTime (without nonce)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10028
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	27
TSTInfo.genTime	YYYYMMDDhhmmssZ -864000
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	NONE
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	It SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference

top

TEST CASE
ID	10028
CODE	genTime
EXP_VALUE	REJECT
NOTE	too new genTime (with nonce)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10029
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10029
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	0x (160bit)
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	28
TSTInfo.genTime	YYYYMMDDhhmmssZ +864000
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	It SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference

top

TEST CASE
ID	10029
CODE	genTime
EXP_VALUE	REJECT
NOTE	too new genTime (without nonce)
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10030
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10030
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	29
TSTInfo.genTime	YYYYMMDDhhmmssZ +864000
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	NONE
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.2. TSA Transactions
DETAIL	It SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference

top

TEST CASE
ID	10030
CODE	accuracy
EXP_VALUE	ACCEPT
NOTE	accuracy>1sec
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10031
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10031
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	30
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	10.0.0
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"accuracy can be decomposed in seconds, milliseconds (between 1-999) and microseconds (1-999), all expressed as integer."

top

TEST CASE
ID	10031
CODE	accuracy
EXP_VALUE	ACCEPT
NOTE	accuracy<1sec
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10032
Get TST (for OFFLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsr_getfile.cgi?type=tst&id=10032
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	NONE
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	31
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	0.5.0
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair	1
CMS::SigningCertificate.certs	1
REFERENCE
REF.	RFC 3161
SECTION	2.4.2. Response Format
DETAIL	"accuracy can be decomposed in seconds, milliseconds (between 1-999) and microseconds (1-999), all expressed as integer."

top

TEST CASE
ID	10032
CODE	nonce
EXP_VALUE	ACCEPT
NOTE	matched nonce
TSA URL (for ONLINE test)	http://MyTestTSA/cgi-bin/cpki/cpki_tsa.cgi?id=10033
Get TST (for OFFLINE test)	NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version	1
MessageImprint.hashAlgorithm	SHA-1
MessageImprint.hashedMessage	0x (160bit)
TimeStampReq.reqPolicy	NONE
TimeStampReq.nonce	0x (160bit)
TimeStampReq.certReq	TRUE
TimeStampReq.extensions	NONE
TSR AND TST PROFILE
MIME-TYPE(application/)	timestamp-reply
TimeStampToken	PRESENT
PKIStatusInfo.status	0(granted)
PKIStatusInfo.statusString	NONE
PKIStatusInfo.failInfo	NONE
TSTInfo.version	1
TSTInfo.policy	1.2.3
MessageImprint.hashAlgorithm	AUTO
MessageImprint.hashedMessage	AUTO
TSTInfo.serialNumber	32
TSTInfo.genTime	YYYYMMDDhhmmssZ
TSTInfo.accuracy	NONE
TSTInfo.ordering	FALSE
TSTInfo.nonce	AUTO
TSTInfo.tsa	NONE
TSTInfo.extensions	NONE
CMS::signedData.version	3
CMS::contentInfo	id-signedData
CMS::econtentInfo	id-ct-TSTInfo
CMS::signingCertificate	PRESENT
CMS::signerInfo	1
CMS::ESSCertID.certHash	AUTO
CMS::signature	AUTO
CMS::SigningCertificate.signer_keypair